In the U.S., 75% of IT/security professionals highlighted the importance of reducing their cyberattack surface by disabling unnecessary tools or applications.

In the U.S., 73.8% of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities.

In the U.S., 63.5% (14% points above the average) of respondents stated the cybersecurity skills gap within their organization has worsened over the past 12 months.

71%.of respondents in the US are concerned about AI-driven attacks.

Fraud attempts in U.S. contact centres now occur every 46 seconds.

Exposure to mobile scams is highest in the US (51%) and UK (49%), and notably lower in DACH (38%).

Fraud costs the federal government upwards of $500 billion annually.

International bad actors were responsible for up to 12% of all incoming applications for government services and/or loans in the study.

At least 1 in 4 fraud attempts targeted more than one government agency at once.

Fraudsters were about four times more likely to use stolen identities instead of synthetic identities.

The average total IT security budget for U.S. enterprises is $1.77 million.

Pentesting accounts for 11% of the total IT security budgets of U.S. enterprises.

Nearly 20% of data breach victims were U.S. organizations.

US respondents were 72% more likely than respondents in Australia or the UK to report significant improvement in security incidents after adopting Zero Trust initiatives.

Americans are the most likely to disapprove of selling data on, with 50% saying it should not be allowed

Of APT activity directed at the U.S., 47% was attributed to China and 35% to Russia-aligned groups.

Advanced persistent threat (APT) detections targeting the U.S. in Q1 2025 were 2.4 times or 136% higher than the level seen the prior quarter.

US respondents were 2.2x as likely as those in Australia or the UK (in aggregate) to be very familiar with Zero Trust architectures.

In terms of geography for attacks on critical sectors, the United States bore the brunt of attacks (61%), followed by the United Kingdom (6%) and Canada (5%).

76% of IT decision-makers in the U.S. and Europe have been impacted by incidents of device theft in the past two years.